package cn.tedu.boot02.controller;


import cn.tedu.boot02.entity.User;
import cn.tedu.boot02.utils.DBUtil;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;

@RestController
public class UserController {
    @RequestMapping("/reg")
    public String reg(User user) {
        System.out.println("user=" + user);
        //注册前判断用户是否存在
        try (Connection conn = DBUtil.getConnection()) {
            String sql = "select id from user where username=?";
            PreparedStatement ps = conn.prepareStatement(sql);
            ps.setString(1, user.getUsername());
            ResultSet rs = ps.executeQuery();
            if (rs.next()) {
                return "用户已存在";
            }
            //至此表示用户名可用
            String insertSQL = "INSERT INTO user VALUES (NULL,?,?,?)";
            PreparedStatement insertPS = conn.prepareStatement(insertSQL);
            insertPS.setString(1, user.getUsername());
            insertPS.setString(2, user.getPassword());
            insertPS.setString(3, user.getNickname());
            insertPS.executeUpdate();
        } catch (SQLException throwables) {
            throwables.printStackTrace();
        }
        return "注册成功";
    }

    @RequestMapping("/login")
    public String login(@RequestBody User user) {
        System.out.println("user = " + user);
        try (Connection conn = DBUtil.getConnection()) {
            String sql = "select password from user where username=?";
            PreparedStatement ps = conn.prepareStatement(sql);
            ps.setString(1, user.getUsername());
            ResultSet rs = ps.executeQuery();
            if (rs.next()) {
                String pw = rs.getString(1);
                if (pw.equals(user.getPassword())) {
                    return "登录成功!";
                }
                return "密码错误";
            }
        } catch (SQLException throwables) {
            throwables.printStackTrace();
        }
        return "用户不存在";
    }
}
